For many companies, cyber crime has taken a prime spot on their list of concerns. According to ESG research published in June 2014, 62 percent of organizations surveyed have plans to increase their funding for cyber security initiatives in the near future, and 32 percent said that cyber security is one of their top budgeting priorities.
Yet with so much money being directed at protecting networks, IT assets, and sensitive data, organizations often miss a key vulnerability: their offices.
While companies focus on the security of their desktop and laptop computers, they overlook other Internet-enabled devices and connections to their networks that provide an easy point of entry for hackers.
Target serves as a prime example of the problem. Investigations in to the company’s massive data breach revealed that attackers gained entry via an HVAC control system accessed remotely by one of the company’s partners.
Researchers have also discovered a potential new exploit that could enable hackers to penetrate systems via USB devices. This means that an employee could unwittingly unleash malware that could wreak havoc on a company’s network…simply by plugging a device in to their laptop’s USB port.
There are a number of hazards around any given office that companies should to consider in their cyber security efforts. Smartphones and tablets are often a point of vulnerability when companies don’t have a proper mobile device management process in place. Spare ethernet connections can even be point of connection for the particularly extroverted hacker who wouldn’t mind posing as janitorial staff to enter the building. And employees themselves often become the point of entry by unintentionally giving up passwords and classified information. It’s a tactic known as a social engineering attack, and it’s one that’s gaining momentum amongst cyber criminals.
Fortunately, there are a few effective strategies you can employ to ensure your office isn’t hackable. One is to implement centralized monitoring of everything connected to your network through a security operations center (SOC). While SOCs are often considered cost prohibitive to all but the largest companies, Lunarline has supported organizations of all sizes in launching successful, affordable SOCs.
In addition to centralized monitoring, it’s also important to get thorough penetration testing to find any vulnerabilities that scanning procedures might not catch. With the help of our innovative Sniper automation tool, Lunarline offers comprehensive, efficient pen tests that can add another level of cyber protection for your organization’s office.
Don’t let a hackable office undermine your cyber security efforts. Contact Lunarline and discover how to safeguard your office from the ground up.